All ransomware groups
nefilim
15 tracked victims
·first seen 2020-05-05·last activity 2021-09-09Group profile
According to Vitali Kremez and Michael Gillespie, this ransomware shares much code with Nemty 2.5. A difference is removal of the RaaS component, which was switched to email communications for payments. Uses AES-128, which is then protected RSA2048.
Recent victims
| Date | Website / victim | Sector | Country |
|---|---|---|---|
| 2021-09-09 | A Atlanta Allergy & Asthma. Part 1. | Healthcare | |
| 2021-09-09 | G Grimmway Farms. Part 1. | Agriculture and Food Production | |
| 2021-09-09 | E Elliott Group / Cascade Engineering / Unitex Textile Rental Services. Teaser. | Manufacturing | |
| 2021-09-09 | S Seven Seas. Part 1. | Consumer Services | |
| 2021-09-09 | T The MADSACK Media Group. Part 1. | Business Services | |
| 2021-09-09 | T Tegut. Part 1. | Consumer Services | |
| 2021-09-09 | T TPG Internet. Part 1. | Telecommunication | |
| 2021-09-09 | S Saipa Press. Part 1. | Manufacturing | |
| 2021-09-09 | T Tegut. Part 2. | Consumer Services | |
| 2021-09-09 | T The MADSACK Media Group. Part 2. | Business Services | |
| 2020-12-01 | W Whirlpool | Manufacturing | |
| 2020-07-27 | D DKA (refrigeration and air conditioning specialist, Dussmann Group subsidiary) | Manufacturing | DE |
| 2020-07-04 |  Orange (mobile operator)orange.fr | Telecommunication | FR |
| 2020-06-01 | F Fisher and Paykel Appliances | Manufacturing | NZ |
| 2020-05-05 | T Toll Group | Transportation/Logistics | AU |